Author Archives: Paul Ducklin

Cybersecurity Awareness Month: #BeCyberSmart

Posted on October 4, 2021 by Paul Ducklin

#BeCyberSmart – during CyberSecurity Awareness Month and beyond Continue reading Cybersecurity Awareness Month: #BeCyberSmart→

Gift card fraud: four suspects hit with money laundering charges

Posted on October 1, 2021 by Paul Ducklin

Gift card fraud may sound like small beer against ransomware – but it’s personal, it hurts, and it’s still a multi-million dollar problem. Continue reading Gift card fraud: four suspects hit with money laundering charges→

S3 Ep52: Let’s Encrypt, Outlook leak, and VMware exploit [Podcast]

Posted on September 30, 2021 by Paul Ducklin

Latest episode – listen now! Continue reading S3 Ep52: Let’s Encrypt, Outlook leak, and VMware exploit [Podcast]→

How to steal money via Apple Pay using the “Express Transit” feature

Posted on September 30, 2021 by Paul Ducklin

Could a rogue vendor with a dodgy payment terminal rip you off via Apple Pay? Maybe. Here’s what to do about it. Continue reading How to steal money via Apple Pay using the “Express Transit” feature→

Serious Security: Let’s Encrypt gets ready to go it alone (in a good way!)

Posted on September 28, 2021 by Paul Ducklin

Let’s Encrypt is set to become a mainstream, self-certifying web certificate authority – here’s why it took so many years. Continue reading Serious Security: Let’s Encrypt gets ready to go it alone (in a good way!)→

S3 Ep51: OMIGOD a gaping hole, waybill scams, and Face ID hacked [Podcast]

Posted on September 24, 2021 by Paul Ducklin

Latest episode – listen now! Continue reading S3 Ep51: OMIGOD a gaping hole, waybill scams, and Face ID hacked [Podcast]→

STILL ALIVE! iOS 12 gets 3 zero-day security patches – update now

Posted on September 23, 2021 by Paul Ducklin

It wasn’t dead, just resting. Continue reading STILL ALIVE! iOS 12 gets 3 zero-day security patches – update now→

How Outlook “autodiscover” could leak your passwords – and how to stop it

Posted on September 23, 2021 by Paul Ducklin

The Microsoft Autodiscover “Great Leak” explained – and how to prevent it
Continue reading How Outlook “autodiscover” could leak your passwords – and how to stop it→

VMware patch bulletin warns: “This needs your immediate attention.”

Posted on September 22, 2021 by Paul Ducklin

“It is a matter of time before working exploits are available,” warns VMware. Continue reading VMware patch bulletin warns: “This needs your immediate attention.”→

iOS 15 launches with 22 documented security patches – including a Face ID bypass using a “3D model”

Posted on September 21, 2021 by Paul Ducklin

Fake heads! (Cue dystopian scifi music.) Continue reading iOS 15 launches with 22 documented security patches – including a Face ID bypass using a “3D model”→